How To Use Forms Authentication with Active Directory in ASP.NET 2.0

Материал готовится, пожалуйста, возвращайтесь позднее

How To: Use Forms Authentication with Active Directory in ASP.NET 2.0

Retired Content This content is outdated and is no longer being maintained. It is provided as a courtesy for individuals who are still using these technologies. This page may contain URLs that were valid when originally published, but now link to sites or pages that no longer exist. patterns & practices Developer Center patterns & practices Developer Center J.D. Meier, Alex Mackman, Blaine Wastell, Prashant Bansode, Andy Wigley, Kishore Gopalan Microsoft Corporation August 2005 Applies To ASP.NET version 2.0 Microsoft® Active Directory® directory service Summary This How To shows you how to use forms authentication with Microsoft® Active Directory® directory service by using the ActiveDirectoryMembershipProvider. The How To shows you how to configure the provider and create and authenticate users. It also shows you how to enforce the password complexity rules defined by your domain policy and how you can extend your Active Directory schema to store password questions and answers. This allows you to support password resets if users forget their passwords. Contents Objectives Overview Summary of Steps Step 1. Create a Web Application with a Logon Page Step 2. Configure the Web Application for Forms Authentication Step 3. Configure ASP.NET for Membership Step 4. Test Forms Authentication Security Considerations Additional Considerations Configuration Attributes Additional Resources Objectives Use the ActiveDirectoryMembershipProvider with forms authentication. Manage application user accounts and passwords that are stored in Active Directory. Use the ActiveDirectoryMembershipProvider to enforce password complexity rules. Learn key production considerations when using membership and forms authentication. Learn key security considerations when using membership and forms authentication. Overview ASP.NET version 2.0 introduces a membership feature that you can use with forms authentication. The membership feature provides an abstraction for the underlying data store that is used to maintain user credentials, such as user names and passwords. The membership feature includes an API that helps you to easily validate user credentials and manage the user database. Supported membership providers include the SqlMembershipProvider for Microsoft SQL Server user store databases and ActiveDirectoryMembershipProvider for Active Directory and Active Directory Application Mode (ADAM) user stores. This How To shows you how to develop a simple Web site that uses forms authentication with Active Directory. It shows you how to configure the ActiveDirectoryMembershipProvider, create users, authenticate users, and establish password complexity rules. It also shows you how to use questions and answers to support password reset functionality. Summary of Steps To use forms authentication with Active Directory in ASP.NET 2.0, complete the following steps:Step 1. Create a Web application with a logon page. Step 2. Configure the Web application for forms authentication. Step 3. Configure ASP.NET for membership. Step 4. Test forms authentication. Step 1. Create a Web Application with a Logon Page In this step, you create a simple Web application with a default page and a logon page. Existing users can use the logon page to log on to the site, and new users can use the logon page to register and create new accounts. To create a Web application with a logon page